CVE-2025-11164
Unauthorized Plugin Activation in Mavix Education WordPress Theme
Publication date: 2025-12-13
Last updated on: 2025-12-13
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpress | mavix_education | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in the Mavix Education theme for WordPress allows authenticated users with Subscriber-level access or higher to activate the Creativ Demo Importer plugin without proper authorization. This happens because the theme lacks a capability check on the 'mavix_education_activate_plugin' AJAX action, enabling unauthorized modification of data.
How can this vulnerability impact me? :
This vulnerability can allow attackers with low-level access (Subscriber or above) to activate plugins they should not be able to, potentially leading to unauthorized changes in the WordPress environment. While it does not directly compromise confidentiality or availability, it can lead to unauthorized modification of data and may be used as a stepping stone for further attacks.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, you should update the Mavix Education WordPress theme to a version later than 1.0, such as version 1.1 or above, which includes code fixes and improvements. Additionally, restrict Subscriber-level users from activating plugins by reviewing user roles and permissions. Monitor and control plugin activation capabilities to prevent unauthorized activation of the Creativ Demo Importer plugin. [2]